2021-10-31 21:45:12 +01:00
|
|
|
#include "rbac_controller.h"
|
|
|
|
|
|
2021-11-01 23:48:25 +01:00
|
|
|
#include "core/error_macros.h"
|
|
|
|
|
|
2021-10-31 21:45:12 +01:00
|
|
|
#include "core/html/form_validator.h"
|
|
|
|
|
#include "core/html/html_builder.h"
|
|
|
|
|
#include "core/http/cookie.h"
|
|
|
|
|
#include "core/http/http_session.h"
|
|
|
|
|
#include "core/http/request.h"
|
|
|
|
|
#include "core/http/session_manager.h"
|
2021-11-09 22:55:53 +01:00
|
|
|
#include "rbac_default_permissions.h"
|
2021-10-31 21:45:12 +01:00
|
|
|
#include "rbac_model.h"
|
2022-01-06 11:12:43 +01:00
|
|
|
#include "modules/users/user.h"
|
2021-10-31 21:45:12 +01:00
|
|
|
|
|
|
|
|
void RBACController::handle_request_main(Request *request) {
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void RBACController::create_validators() {
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-01 15:12:09 +01:00
|
|
|
void RBACController::admin_handle_request_main(Request *request) {
|
2021-11-01 21:21:03 +01:00
|
|
|
String seg = request->get_current_path_segment();
|
2021-11-01 16:39:30 +01:00
|
|
|
|
2021-11-01 21:21:03 +01:00
|
|
|
if (seg == "") {
|
|
|
|
|
admin_render_rank_list(request);
|
|
|
|
|
return;
|
2021-11-01 23:48:25 +01:00
|
|
|
} else if (seg == "new_rank") {
|
|
|
|
|
request->push_path();
|
|
|
|
|
|
|
|
|
|
admin_handle_new_rank(request);
|
|
|
|
|
} else if (seg == "edit_rank") {
|
|
|
|
|
request->push_path();
|
|
|
|
|
|
|
|
|
|
admin_handle_edit_rank(request);
|
2021-11-02 12:27:36 +01:00
|
|
|
} else if (seg == "permission_editor") {
|
2021-11-02 00:18:57 +01:00
|
|
|
request->push_path();
|
|
|
|
|
|
2021-11-02 12:27:36 +01:00
|
|
|
admin_permission_editor(request);
|
2021-11-01 21:21:03 +01:00
|
|
|
}
|
2021-11-01 23:48:25 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void RBACController::admin_handle_new_rank(Request *request) {
|
|
|
|
|
|
|
|
|
|
if (request->get_method() == HTTP_METHOD_POST) {
|
|
|
|
|
Ref<RBACRank> rank;
|
|
|
|
|
rank.instance();
|
|
|
|
|
|
|
|
|
|
rank->name = request->get_parameter("name");
|
|
|
|
|
rank->name_internal = request->get_parameter("name_internal");
|
|
|
|
|
rank->settings = request->get_parameter("settings");
|
2021-11-01 21:21:03 +01:00
|
|
|
|
2021-11-09 22:55:53 +01:00
|
|
|
int base_permissions = 0;
|
|
|
|
|
|
|
|
|
|
for (int i = 0; i < _registered_permissions.size(); ++i) {
|
|
|
|
|
String param = request->get_parameter("perm_check_" + String::num(i));
|
|
|
|
|
|
|
|
|
|
if (param != "") {
|
|
|
|
|
base_permissions |= _registered_permissions[i].value;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
rank->base_permissions = base_permissions;
|
|
|
|
|
|
2021-11-09 23:03:17 +01:00
|
|
|
int rank_permissions = 0;
|
|
|
|
|
|
|
|
|
|
for (int i = 0; i < _registered_rank_permissions.size(); ++i) {
|
|
|
|
|
String param = request->get_parameter("perm_rank_check_" + String::num(i));
|
|
|
|
|
|
|
|
|
|
if (param != "") {
|
|
|
|
|
rank_permissions |= _registered_rank_permissions[i].value;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
rank->rank_permissions = rank_permissions;
|
|
|
|
|
|
2021-11-01 23:48:25 +01:00
|
|
|
RBACModel::get_singleton()->save_rank(rank);
|
|
|
|
|
|
2021-11-09 22:55:53 +01:00
|
|
|
_ranks[rank->id] = rank;
|
2021-11-01 23:48:25 +01:00
|
|
|
|
|
|
|
|
request->send_redirect(request->get_url_root_parent() + "edit_rank/" + String::num(rank->id));
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
RBACAdminRankViewData data;
|
|
|
|
|
render_rank_view(request, &data);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void RBACController::admin_handle_edit_rank(Request *request) {
|
|
|
|
|
String seg = request->get_current_path_segment();
|
|
|
|
|
|
|
|
|
|
//check whether it's numeric
|
|
|
|
|
//if (!seg.is)
|
|
|
|
|
|
|
|
|
|
int id = seg.to_int();
|
|
|
|
|
|
|
|
|
|
if (id == 0) {
|
|
|
|
|
RLOG_MSG("RBACController::admin_handle_edit_rank: id == 0!\n");
|
|
|
|
|
request->send_redirect(request->get_url_root_parent());
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-09 22:55:53 +01:00
|
|
|
Ref<RBACRank> rank = _ranks[id];
|
2021-11-01 23:48:25 +01:00
|
|
|
|
|
|
|
|
if (!rank.is_valid()) {
|
|
|
|
|
RLOG_MSG("RBACController::admin_handle_edit_rank: !rank.is_valid()\n");
|
|
|
|
|
request->send_redirect(request->get_url_root_parent());
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
RBACAdminRankViewData data;
|
|
|
|
|
data.rank = rank;
|
|
|
|
|
|
|
|
|
|
if (request->get_method() == HTTP_METHOD_POST) {
|
|
|
|
|
rank->name = request->get_parameter("name");
|
|
|
|
|
rank->name_internal = request->get_parameter("name_internal");
|
|
|
|
|
rank->settings = request->get_parameter("settings");
|
|
|
|
|
|
2021-11-09 22:55:53 +01:00
|
|
|
int base_permissions = 0;
|
|
|
|
|
|
|
|
|
|
for (int i = 0; i < _registered_permissions.size(); ++i) {
|
|
|
|
|
String param = request->get_parameter("perm_check_" + String::num(i));
|
|
|
|
|
|
|
|
|
|
if (param != "") {
|
|
|
|
|
base_permissions |= _registered_permissions[i].value;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
rank->base_permissions = base_permissions;
|
|
|
|
|
|
2021-11-09 23:03:17 +01:00
|
|
|
int rank_permissions = 0;
|
|
|
|
|
|
|
|
|
|
for (int i = 0; i < _registered_rank_permissions.size(); ++i) {
|
|
|
|
|
String param = request->get_parameter("perm_rank_check_" + String::num(i));
|
|
|
|
|
|
|
|
|
|
if (param != "") {
|
|
|
|
|
rank_permissions |= _registered_rank_permissions[i].value;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
rank->rank_permissions = rank_permissions;
|
|
|
|
|
|
2021-11-01 23:48:25 +01:00
|
|
|
RBACModel::get_singleton()->save_rank(rank);
|
|
|
|
|
|
|
|
|
|
data.messages.push_back("Save Success!");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
render_rank_view(request, &data);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void RBACController::render_rank_view(Request *request, RBACAdminRankViewData *data) {
|
|
|
|
|
int id = 0;
|
|
|
|
|
String name = "";
|
|
|
|
|
String name_internal = "";
|
|
|
|
|
String settings = "";
|
2021-11-09 22:55:53 +01:00
|
|
|
int base_permissions = 0;
|
2021-11-01 23:48:25 +01:00
|
|
|
int rank_permissions = 0;
|
|
|
|
|
|
|
|
|
|
if (data->rank.is_valid()) {
|
|
|
|
|
id = data->rank->id;
|
|
|
|
|
name = data->rank->name;
|
|
|
|
|
name_internal = data->rank->name_internal;
|
|
|
|
|
settings = data->rank->settings;
|
2021-11-09 22:55:53 +01:00
|
|
|
base_permissions = data->rank->base_permissions;
|
2021-11-01 23:48:25 +01:00
|
|
|
rank_permissions = data->rank->rank_permissions;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
HTMLBuilder b;
|
|
|
|
|
|
|
|
|
|
b.h4()->f()->a()->href(request->get_url_root_parent())->f()->w("<- Back")->ca()->ch4();
|
|
|
|
|
b.h4()->f()->w("RBAC Editor")->ch4();
|
|
|
|
|
|
|
|
|
|
b.div()->cls("messages");
|
|
|
|
|
for (int i = 0; i < data->messages.size(); ++i) {
|
|
|
|
|
b.w(data->messages[i])->br();
|
|
|
|
|
}
|
|
|
|
|
b.cdiv();
|
|
|
|
|
|
|
|
|
|
b.form()->method("POST")->action(request->get_url_root() + String::num(id));
|
|
|
|
|
{
|
|
|
|
|
//b.input()->type("hidden")->name("id")->value(String::num(id))->f()->cinput();
|
|
|
|
|
b.w("Name:")->br();
|
|
|
|
|
b.input()->type("text")->name("name")->value(name)->f()->br();
|
|
|
|
|
b.w("Name (Internal):")->br();
|
|
|
|
|
b.input()->type("text")->name("name_internal")->value(name_internal)->f()->cinput()->br();
|
|
|
|
|
b.w("Custom Settings:")->br();
|
|
|
|
|
b.input()->type("text")->name("settings")->value(settings)->f()->cinput()->br();
|
|
|
|
|
|
2021-11-09 23:03:17 +01:00
|
|
|
b.w("Base Permissions:")->br();
|
|
|
|
|
|
2021-11-09 22:55:53 +01:00
|
|
|
for (int i = 0; i < _registered_permissions.size(); ++i) {
|
|
|
|
|
String checkbox_name = "perm_check_" + String::num(i);
|
|
|
|
|
|
|
|
|
|
b.input()->type("checkbox")->name(checkbox_name)->value(checkbox_name)->id(checkbox_name)->checked((base_permissions & _registered_permissions[i].value) != 0);
|
|
|
|
|
b.label()->fora(checkbox_name)->f()->w(_registered_permissions[i].name)->clabel();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
b.br();
|
2021-11-01 23:48:25 +01:00
|
|
|
|
2021-11-09 23:03:17 +01:00
|
|
|
b.w("Rank Permissions:")->br();
|
|
|
|
|
|
|
|
|
|
for (int i = 0; i < _registered_rank_permissions.size(); ++i) {
|
|
|
|
|
String checkbox_name = "perm_rank_check_" + String::num(i);
|
|
|
|
|
|
|
|
|
|
b.input()->type("checkbox")->name(checkbox_name)->value(checkbox_name)->id(checkbox_name)->checked((rank_permissions & _registered_rank_permissions[i].value) != 0);
|
|
|
|
|
b.label()->fora(checkbox_name)->f()->w(_registered_rank_permissions[i].name)->clabel();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
b.br();
|
|
|
|
|
|
2021-11-01 23:48:25 +01:00
|
|
|
b.input()->type("submit")->value("Save");
|
|
|
|
|
}
|
|
|
|
|
b.cform();
|
|
|
|
|
|
|
|
|
|
request->body += b.result;
|
2021-11-01 21:21:03 +01:00
|
|
|
}
|
|
|
|
|
|
2021-11-02 12:27:36 +01:00
|
|
|
void RBACController::admin_permission_editor(Request *request) {
|
2021-11-02 00:18:57 +01:00
|
|
|
|
|
|
|
|
String seg = request->get_current_path_segment();
|
|
|
|
|
|
|
|
|
|
//check whether it's numeric
|
|
|
|
|
//if (!seg.is)
|
|
|
|
|
|
|
|
|
|
int id = seg.to_int();
|
|
|
|
|
|
|
|
|
|
if (id == 0) {
|
2021-11-02 12:27:36 +01:00
|
|
|
RLOG_MSG("RBACController::admin_permission_editor: id == 0!\n");
|
2021-11-02 00:18:57 +01:00
|
|
|
request->send_redirect(request->get_url_root_parent());
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-09 22:55:53 +01:00
|
|
|
Ref<RBACRank> rank = _ranks[id];
|
2021-11-02 00:18:57 +01:00
|
|
|
|
|
|
|
|
if (!rank.is_valid()) {
|
2021-11-02 12:27:36 +01:00
|
|
|
RLOG_MSG("RBACController::admin_permission_editor: !rank.is_valid()\n");
|
2021-11-02 00:18:57 +01:00
|
|
|
request->send_redirect(request->get_url_root_parent());
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
RBACAdminEditPermissionView data;
|
|
|
|
|
data.rank = rank;
|
|
|
|
|
|
|
|
|
|
request->push_path();
|
|
|
|
|
|
2021-11-02 12:27:36 +01:00
|
|
|
String segn = request->get_current_path_segment();
|
2021-11-02 00:18:57 +01:00
|
|
|
|
2021-11-09 22:55:53 +01:00
|
|
|
if (segn == "") {
|
|
|
|
|
admin_render_permission_editor_main_view(request, &data);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-02 12:27:36 +01:00
|
|
|
if (segn == "new") {
|
|
|
|
|
request->push_path();
|
|
|
|
|
|
|
|
|
|
if (request->get_method() == HTTP_METHOD_POST) {
|
|
|
|
|
if (admin_process_permission_editor_entry_edit_create_post(request, &data)) {
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
admin_render_permission_editor_entry_edit_create_view(request, &data);
|
2021-11-02 00:18:57 +01:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-09 22:55:53 +01:00
|
|
|
if (segn.is_uint()) {
|
|
|
|
|
int perm_index = segn.to_int();
|
|
|
|
|
|
|
|
|
|
request->push_path();
|
|
|
|
|
|
|
|
|
|
if (perm_index < 0 || perm_index >= rank->permissions.size()) {
|
|
|
|
|
RLOG_ERR("(perm_index < 0 || perm_index >= rank->permissions.size())!\n");
|
|
|
|
|
request->send_redirect(request->get_url_root_parent());
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
data.permission = rank->permissions[perm_index];
|
|
|
|
|
|
|
|
|
|
if (!data.permission.is_valid()) {
|
|
|
|
|
RLOG_ERR("(!data.permission.is_valid()\n");
|
|
|
|
|
request->send_error(503);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (request->get_method() == HTTP_METHOD_POST) {
|
|
|
|
|
if (admin_process_permission_editor_entry_edit_create_post(request, &data)) {
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
admin_render_permission_editor_entry_edit_create_view(request, &data);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
request->send_error(404);
|
2021-11-02 00:18:57 +01:00
|
|
|
}
|
|
|
|
|
|
2021-11-02 12:27:36 +01:00
|
|
|
void RBACController::admin_render_permission_editor_main_view(Request *request, RBACAdminEditPermissionView *data) {
|
2021-11-02 00:18:57 +01:00
|
|
|
HTMLBuilder b;
|
|
|
|
|
|
|
|
|
|
Ref<RBACRank> rank = data->rank;
|
|
|
|
|
|
2021-11-02 12:27:36 +01:00
|
|
|
b.h4()->f()->a()->href(request->get_url_root_parent(2))->f()->w("<- Back")->ca()->ch4();
|
2021-11-02 00:18:57 +01:00
|
|
|
b.h4()->f()->w("RBAC Editor")->ch4();
|
|
|
|
|
|
|
|
|
|
b.div()->cls("heading");
|
|
|
|
|
{
|
|
|
|
|
b.w("[ Id ]: ")->wn(rank->id)->w(", [ Name ]: ")->w(rank->name)->w(", [ Name Internal ]: ")->w(rank->name_internal);
|
|
|
|
|
}
|
|
|
|
|
b.cdiv();
|
|
|
|
|
|
|
|
|
|
b.br();
|
|
|
|
|
|
|
|
|
|
for (int i = 0; i < rank->permissions.size(); ++i) {
|
2021-11-02 12:27:36 +01:00
|
|
|
Ref<RBACPermission> perm = rank->permissions[i];
|
|
|
|
|
|
|
|
|
|
if (!perm.is_valid()) {
|
|
|
|
|
RLOG_ERR("RBACController::admin_render_permission_editor_main_view: !perm.is_valid()\n");
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-02 00:18:57 +01:00
|
|
|
b.div()->cls("row");
|
|
|
|
|
{
|
2021-11-09 22:55:53 +01:00
|
|
|
b.a()->href(request->get_url_root() + String::num(i));
|
|
|
|
|
|
2021-11-02 12:27:36 +01:00
|
|
|
b.w("-- Rank: [ Id ]: ")->wn(perm->id)->w(", [ Rank Id ]: ")->wn(perm->rank_id)->w(", [ Name ]: ")->w(perm->name);
|
2021-11-02 16:43:09 +01:00
|
|
|
b.w(" [ URL ]: ")->w(perm->url)->w(", [ Sort Order ]: ")->wn(perm->sort_order);
|
2021-11-09 22:55:53 +01:00
|
|
|
b.w(" [ Permissions ]: ");
|
|
|
|
|
|
|
|
|
|
int pcount = 0;
|
|
|
|
|
int perms = perm->permissions;
|
|
|
|
|
for (int i = 0; i < _registered_permissions.size(); ++i) {
|
|
|
|
|
if ((_registered_permissions[i].value & perms) != 0) {
|
|
|
|
|
if (pcount > 0) {
|
|
|
|
|
b.w(", ");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
b.w(_registered_permissions[i].name);
|
|
|
|
|
|
|
|
|
|
++pcount;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (pcount == 0) {
|
|
|
|
|
b.w("- None -");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
b.ca();
|
2021-11-02 00:18:57 +01:00
|
|
|
}
|
|
|
|
|
b.cdiv();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
b.br();
|
|
|
|
|
|
|
|
|
|
b.a()->href(request->get_url_root("new"));
|
|
|
|
|
b.w("New Permission");
|
|
|
|
|
b.ca();
|
|
|
|
|
|
|
|
|
|
request->body += b.result;
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-02 12:27:36 +01:00
|
|
|
void RBACController::admin_render_permission_editor_entry_edit_create_view(Request *request, RBACAdminEditPermissionView *data) {
|
2021-11-02 00:18:57 +01:00
|
|
|
HTMLBuilder b;
|
|
|
|
|
|
|
|
|
|
Ref<RBACRank> rank = data->rank;
|
2021-11-02 12:27:36 +01:00
|
|
|
Ref<RBACPermission> perm = data->permission;
|
|
|
|
|
|
|
|
|
|
String name;
|
|
|
|
|
String url;
|
|
|
|
|
int sort_order = 0;
|
|
|
|
|
int permissions = 0;
|
|
|
|
|
|
|
|
|
|
if (perm.is_valid()) {
|
|
|
|
|
name = perm->name;
|
|
|
|
|
url = perm->url;
|
|
|
|
|
sort_order = perm->sort_order;
|
|
|
|
|
permissions = perm->permissions;
|
|
|
|
|
}
|
2021-11-02 00:18:57 +01:00
|
|
|
|
2021-11-02 12:27:36 +01:00
|
|
|
b.h4()->f()->a()->href(request->get_url_root_parent())->f()->w("<- Back")->ca()->ch4();
|
2021-11-02 00:18:57 +01:00
|
|
|
b.h4()->f()->w("RBAC Editor")->ch4();
|
2021-11-02 12:27:36 +01:00
|
|
|
b.br();
|
2021-11-02 00:18:57 +01:00
|
|
|
|
2021-11-02 12:27:36 +01:00
|
|
|
b.div()->cls("messages");
|
|
|
|
|
for (int i = 0; i < data->messages.size(); ++i) {
|
|
|
|
|
b.w(data->messages[i])->br();
|
|
|
|
|
}
|
|
|
|
|
b.cdiv();
|
2021-11-02 00:18:57 +01:00
|
|
|
b.br();
|
|
|
|
|
|
2021-11-02 12:27:36 +01:00
|
|
|
b.div()->cls("heading");
|
|
|
|
|
{
|
|
|
|
|
b.w("Rank: [ Id ]: ")->wn(rank->id)->w(", [ Name ]: ")->w(rank->name)->w(", [ Name Internal ]: ")->w(rank->name_internal);
|
|
|
|
|
}
|
|
|
|
|
b.cdiv();
|
|
|
|
|
b.br();
|
|
|
|
|
|
|
|
|
|
b.form()->method("POST")->action(request->get_url_root());
|
|
|
|
|
{
|
|
|
|
|
b.w("Name:")->br();
|
|
|
|
|
b.input()->type("text")->name("name")->value(name)->f()->br();
|
|
|
|
|
b.w("URL:")->br();
|
|
|
|
|
b.input()->type("text")->name("url")->value(url)->f()->cinput()->br();
|
|
|
|
|
|
2021-11-09 23:03:17 +01:00
|
|
|
b.w("Permissions:")->br();
|
|
|
|
|
|
2021-11-09 22:55:53 +01:00
|
|
|
for (int i = 0; i < _registered_permissions.size(); ++i) {
|
|
|
|
|
String checkbox_name = "perm_check_" + String::num(i);
|
|
|
|
|
|
|
|
|
|
b.input()->type("checkbox")->name(checkbox_name)->value(checkbox_name)->id(checkbox_name)->checked((permissions & _registered_permissions[i].value) != 0);
|
|
|
|
|
b.label()->fora(checkbox_name)->f()->w(_registered_permissions[i].name)->clabel();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
b.br();
|
2021-11-02 12:27:36 +01:00
|
|
|
|
|
|
|
|
b.input()->type("submit")->value("Save");
|
|
|
|
|
}
|
|
|
|
|
b.cform();
|
|
|
|
|
|
2021-11-02 00:18:57 +01:00
|
|
|
request->body += b.result;
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-02 12:27:36 +01:00
|
|
|
bool RBACController::admin_process_permission_editor_entry_edit_create_post(Request *request, RBACAdminEditPermissionView *data) {
|
|
|
|
|
Ref<RBACRank> rank = data->rank;
|
|
|
|
|
|
|
|
|
|
Ref<RBACPermission> perm = data->permission;
|
|
|
|
|
|
|
|
|
|
if (!perm.is_valid()) {
|
|
|
|
|
perm.instance();
|
|
|
|
|
|
|
|
|
|
perm->rank_id = rank->id;
|
|
|
|
|
|
|
|
|
|
if (rank->permissions.size() > 0) {
|
|
|
|
|
Ref<RBACPermission> p = rank->permissions[rank->permissions.size() - 1];
|
|
|
|
|
|
|
|
|
|
perm->sort_order = p->sort_order + 1;
|
|
|
|
|
}
|
2021-11-09 22:55:53 +01:00
|
|
|
|
|
|
|
|
rank->permissions.push_back(perm);
|
2021-11-02 12:27:36 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
perm->name = request->get_parameter("name");
|
|
|
|
|
perm->url = request->get_parameter("url");
|
2021-11-09 22:55:53 +01:00
|
|
|
|
|
|
|
|
int permissions = 0;
|
|
|
|
|
|
|
|
|
|
for (int i = 0; i < _registered_permissions.size(); ++i) {
|
|
|
|
|
String param = request->get_parameter("perm_check_" + String::num(i));
|
|
|
|
|
|
|
|
|
|
if (param != "") {
|
|
|
|
|
permissions |= _registered_permissions[i].value;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
perm->permissions = permissions;
|
2021-11-02 12:27:36 +01:00
|
|
|
|
|
|
|
|
//set this up in the form by default
|
|
|
|
|
//perm->sort_order = request->get_parameter("sort_order").to_int();
|
|
|
|
|
|
|
|
|
|
RBACModel::get_singleton()->save_permission(perm);
|
|
|
|
|
|
|
|
|
|
if (perm->id == 0) {
|
|
|
|
|
RLOG_ERR("RBACController::admin_process_permission_editor_entry_edit_create_post: perm->id == 0!\n");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
request->send_redirect(request->get_url_root_parent());
|
|
|
|
|
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-01 21:21:03 +01:00
|
|
|
void RBACController::admin_render_rank_list(Request *request) {
|
|
|
|
|
HTMLBuilder b;
|
|
|
|
|
|
|
|
|
|
b.h4()->f()->a()->href(request->get_url_root_parent())->f()->w("<- Back")->ca()->ch4();
|
2021-11-01 23:48:25 +01:00
|
|
|
b.h4()->f()->w("RBAC Editor")->ch4();
|
2021-11-01 21:21:03 +01:00
|
|
|
|
2021-11-09 22:55:53 +01:00
|
|
|
for (std::map<int, Ref<RBACRank> >::iterator p = _ranks.begin(); p != _ranks.end(); p++) {
|
2021-11-01 21:21:03 +01:00
|
|
|
Ref<RBACRank> r = p->second;
|
|
|
|
|
|
|
|
|
|
if (!r.is_valid()) {
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
b.div()->cls("row");
|
|
|
|
|
{
|
2021-11-02 12:27:36 +01:00
|
|
|
b.a()->href(request->get_url_root("permission_editor/") + String::num(r->id));
|
2021-11-01 23:48:25 +01:00
|
|
|
b.w("[ Id ]: ")->wn(r->id)->w(", [ Name ]: ")->w(r->name)->w(", [ Name Internal ]: ")->w(r->name_internal);
|
2021-11-09 22:55:53 +01:00
|
|
|
b.w(", [ Base Permissions ]: ");
|
|
|
|
|
|
|
|
|
|
int pcount = 0;
|
|
|
|
|
int perms = r->base_permissions;
|
|
|
|
|
for (int i = 0; i < _registered_permissions.size(); ++i) {
|
|
|
|
|
if ((_registered_permissions[i].value & perms) != 0) {
|
|
|
|
|
if (pcount > 0) {
|
|
|
|
|
b.w(", ");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
b.w(_registered_permissions[i].name);
|
|
|
|
|
|
|
|
|
|
++pcount;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (pcount == 0) {
|
|
|
|
|
b.w("- None -");
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-09 23:03:17 +01:00
|
|
|
b.w(", [ Rank Permissions ]: ");
|
|
|
|
|
|
|
|
|
|
pcount = 0;
|
|
|
|
|
perms = r->rank_permissions;
|
|
|
|
|
for (int i = 0; i < _registered_rank_permissions.size(); ++i) {
|
|
|
|
|
if ((_registered_rank_permissions[i].value & perms) != 0) {
|
|
|
|
|
if (pcount > 0) {
|
|
|
|
|
b.w(", ");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
b.w(_registered_rank_permissions[i].name);
|
|
|
|
|
|
|
|
|
|
++pcount;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (pcount == 0) {
|
|
|
|
|
b.w("- None -");
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-01 21:21:03 +01:00
|
|
|
b.ca();
|
2021-11-01 23:48:25 +01:00
|
|
|
|
|
|
|
|
b.w(" - ");
|
|
|
|
|
|
2021-11-01 21:21:03 +01:00
|
|
|
b.a()->href(request->get_url_root("edit_rank/") + String::num(r->id));
|
2021-11-09 22:55:53 +01:00
|
|
|
b.w("[ Edit ]");
|
2021-11-01 21:21:03 +01:00
|
|
|
b.ca();
|
|
|
|
|
}
|
|
|
|
|
b.cdiv();
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-01 23:48:25 +01:00
|
|
|
b.br();
|
2021-11-02 00:18:57 +01:00
|
|
|
|
2021-11-01 21:21:03 +01:00
|
|
|
b.a()->href(request->get_url_root("new_rank"));
|
|
|
|
|
b.w("New Rank");
|
|
|
|
|
b.ca();
|
|
|
|
|
|
|
|
|
|
request->body += b.result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void RBACController::admin_render_rank_editor(Request *request) {
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
String RBACController::admin_get_section_name() {
|
|
|
|
|
return "Role Based Access Control";
|
2021-11-01 15:12:09 +01:00
|
|
|
}
|
|
|
|
|
|
2021-11-01 01:39:55 +01:00
|
|
|
void RBACController::admin_add_section_links(Vector<AdminSectionLinkInfo> *links) {
|
2021-11-01 21:21:03 +01:00
|
|
|
links->push_back(AdminSectionLinkInfo("Editor", ""));
|
2021-11-01 01:39:55 +01:00
|
|
|
}
|
|
|
|
|
|
2021-11-09 22:55:53 +01:00
|
|
|
void RBACController::register_permission(const String &name, const int val) {
|
|
|
|
|
_registered_permissions.push_back(PermissionEntry(name, val));
|
|
|
|
|
}
|
|
|
|
|
void RBACController::register_rank_permission(const String &name, const int val) {
|
|
|
|
|
_registered_rank_permissions.push_back(PermissionEntry(name, val));
|
|
|
|
|
}
|
|
|
|
|
void RBACController::clear_registered_permissions() {
|
|
|
|
|
_registered_permissions.clear();
|
|
|
|
|
_registered_rank_permissions.clear();
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-01 16:39:30 +01:00
|
|
|
void RBACController::initialize() {
|
2021-11-09 22:55:53 +01:00
|
|
|
_ranks = RBACModel::get_singleton()->load_ranks();
|
2021-11-10 19:53:56 +01:00
|
|
|
_default_rank_id = RBACModel::get_singleton()->get_default_rank();
|
2021-11-14 01:34:01 +01:00
|
|
|
_default_user_rank_id = RBACModel::get_singleton()->get_default_user_rank();
|
2021-11-09 22:55:53 +01:00
|
|
|
|
|
|
|
|
register_permissions();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void RBACController::register_permissions() {
|
2022-01-06 11:12:43 +01:00
|
|
|
register_permission("Create", User::PERMISSION_CREATE);
|
|
|
|
|
register_permission("Read", User::PERMISSION_READ);
|
|
|
|
|
register_permission("Update", User::PERMISSION_UPDATE);
|
|
|
|
|
register_permission("Delete", User::PERMISSION_DELETE);
|
2021-11-09 22:55:53 +01:00
|
|
|
|
2021-11-10 20:08:42 +01:00
|
|
|
register_rank_permission("Admin Panel", RBAC_RANK_PERMISSION_ADMIN_PANEL);
|
|
|
|
|
register_rank_permission("Use Redirect", RBAC_RANK_PERMISSION_USE_REDIRECT);
|
2021-11-01 16:39:30 +01:00
|
|
|
}
|
|
|
|
|
|
2021-11-10 19:35:02 +01:00
|
|
|
Ref<RBACRank> RBACController::get_rank(int rank_id) {
|
|
|
|
|
return _ranks[rank_id];
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-14 01:34:01 +01:00
|
|
|
int RBACController::get_default_user_rank_id() {
|
|
|
|
|
return _default_user_rank_id;
|
|
|
|
|
}
|
|
|
|
|
Ref<RBACRank> RBACController::get_default_user_rank() {
|
|
|
|
|
return _ranks[get_default_user_rank_id()];
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-10 19:35:02 +01:00
|
|
|
int RBACController::get_default_rank_id() {
|
2021-11-10 19:53:56 +01:00
|
|
|
return _default_rank_id;
|
2021-11-10 19:35:02 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Ref<RBACRank> RBACController::get_default_rank() {
|
|
|
|
|
return _ranks[get_default_rank_id()];
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-10 20:08:42 +01:00
|
|
|
String &RBACController::get_redirect_url() {
|
|
|
|
|
return _redirect_url;
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-10 19:35:02 +01:00
|
|
|
bool RBACController::continue_on_missing_default_rank() {
|
|
|
|
|
//todo, add setting
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2021-10-31 21:45:12 +01:00
|
|
|
RBACController *RBACController::get_singleton() {
|
|
|
|
|
return _self;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
RBACController::RBACController() :
|
2021-10-31 23:12:05 +01:00
|
|
|
AdminController() {
|
2021-10-31 21:45:12 +01:00
|
|
|
|
|
|
|
|
if (_self) {
|
|
|
|
|
printf("RBACController::RBACController(): Error! self is not null!/n");
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-10 19:53:56 +01:00
|
|
|
_default_rank_id = 0;
|
2021-11-14 01:34:01 +01:00
|
|
|
_default_user_rank_id = 0;
|
2021-11-10 19:53:56 +01:00
|
|
|
|
2021-10-31 21:45:12 +01:00
|
|
|
_self = this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
RBACController::~RBACController() {
|
|
|
|
|
if (_self == this) {
|
|
|
|
|
_self = nullptr;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
RBACController *RBACController::_self = nullptr;
|
